New Video Alert! Dive into the SharkFest'24 EUROPE Panel Discussion: Bridging the Knowledge-Solution Gap
Join Chris Greer, Ross Bagurdes, Josh Clark, Rick van Werven (Profitap), and Robert Hess—plus moderator & Wireshark core developer Roland Knall—for an in-depth discussion on Wireshark, network analysis, and more!
🔗 Watch now: https://youtu.be/ftmS02GAuww
🔗 Learn more about upcoming SharkFests: https://sharkfest.wireshark.org
I saw a demo of #StratoShark at SharkFest in November. It will be useful addition to #malwareanalysis toolkit.
Imagine #procmon and #apimonitor (or strace/ltrace) with user interface of #wireshark, including support for powerful wireshark display filters.
#blueteam #dfir #sf24eu @wireshark @geraldcombs
RE: https://infosec.exchange/@geraldcombs/113680686165407123
Nigel Douglas and I are going speak at #FOSDEM about a project I've been working on for a while. See you in Brussels! https://pretalx.fosdem.org/fosdem-2025/talk/review/3LMU7MJN7TDVVBWZTX9ZLJDDUWWJGG7J
During the #SharkBytes session at #SharkFest conference I had an opportunity to present a lightning talk about my pet project called IDS Lab.
It is a lab infrastructure deployable as docker containers, which simulates the small company network.
The IDS Lab consists of web webserver with #Wordpress, #MySQL database, #Linux desktop with RDP, the #WireGuard VPN for "remote" workers and for connecting another virtual or physical machines into the lab network.
This part of infrastructure can be used for attack simulations.
There are additional components for playing with logs and detections, too: #Fluentbit, #Suricata and #OpenObserve as lightweight SIEM.
In the #SIEM we already have preconfgured dashboards for alerts, netflows, web logs and logs from windows machines, if present.
Using the provided setup script, the whole lab can be up and running in up to 5 minutes. For more info, please check my GitHub repository with the IDS Lab:
Day 2 of SharkFest’24 EUROPE is underway with a panel discussion led by Roland Knall and featuring Ross Bagurdes, Chris Greer, Josh Clark, Robert Hess, and Rick van Werven!
Today training about #ThreatHunting with #Wireshark by Chris Greer was very good. Great selection of pcaps from various stages of the cyber attacks inspired us to ask questions and discuss together in depth details and anomalies hidden in the packets.
Also the private room on #Tryhackme platform works great. It is nice to see our progress during the course and receive the instant feedback.
To be humble, I do not know Chris before this training and I was not really sure what to expect from today (I originally registered for the different Threat Hunting training, which was later replaced by this one). But now I can really recommend Chris and his training to everyone interested in packet analysis and network intrusions. Good job and thank you.
Attached: 1 image The pre-conference classes are underway at SharkFest'24 EUROPE! Chris Greer & Ross Bagurdes are teaching in depth classes on Wireshark. https://sharkfest.wireshark.org #sf24eu #Wireshark #PacketAnalysis
The pre-conference classes are underway at SharkFest'24 EUROPE! Chris Greer & Ross Bagurdes are teaching in depth classes on Wireshark.
Wireshark
MalwareLab